AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

Toward Polymorphic Backdoor Against Semantic Communication via Intensity-Based Poisoning

inforesearchPeer-Reviewed

securityresearch

Source: IEEE Xplore (Security & AI Journals)April 30, 2026

Summary

Researchers created SemBugger, a polymorphic backdoor attack (a type of hidden malicious code that can change its behavior) against semantic communication (SC, a system where AI learns shared knowledge to compress and transmit information efficiently). The attack uses variable-intensity triggers to poison training data and manipulate the system into producing different malicious outputs while appearing normal, but the researchers also developed a defense mechanism using controlled noise that can resist these attacks.

Solution / Mitigation

The source proposes a provable robustness defense that resists SemBugger attacks through a controlled noise mechanism, which operates by strategically adding noise to semantic communication inputs, with theoretical lower bounds on defense effectiveness provided. Experiments show this designed defense effectively neutralizes SemBugger attacks.

Classification

Attack Type

Model Poisoning

Attack SophisticationAdvanced

Impact (CIA+S)

integritysafety

Related Issues

high

CVE-2024-37052: Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling

Similar attackNVD/CVE Database

info

Model Stability Defense Against Model Poisoning in Federated Learning

Monthly digest — independent AI security research

Original source: http://ieeexplore.ieee.org/document/11501285

First tracked: May 12, 2026 at 02:01 AM

Classified by LLM (prompt v3) · confidence: 85%